Djecrety ― Django Secret Key Generator

Django Secret Key Generator

Djecrety package also is available, read the docs!

Djecrety is hosted on Github Pages and doesn't have any back-end code or database.
The keys generate on demand and it's completely random and never store to any file or database.

That's all. So you can safely use Djecrety.

Got It!

As Django official documentation says:

A secret key used to provide cryptographic signing, and should be set to a unique, unpredictable value.
...
Running Django with a known SECRET_KEY defeats many of Django’s security protections, and can lead to privilege escalation and remote code execution vulnerabilities.

So recommended: Keep it safe. Ignore settings.py file in your commits. Change the secret key on your deploy. If you lost the secret key for any reason or the server got compromised change it as soon as possible.

Got It!

After creating your project:

Duplicate your project settings.py file and rename it to settings.py.sample.
Open settings.py.sample file and set SECRET_KEY value empty.
```
SECRET_KEY = ''
```
Add settings.py file to .gitignore file. (If using git)
When you want to deploy your project on the server (production or test), duplicate settings.py.sample file.
Rename duplicated file to settings.py.
Set SECRET_KEY value to the new secret key generated with Djecrety in settings.py file.

Got It!